9.3
CVSSv2

CVE-2017-3034

Published: 12/04/2017 Updated: 11/07/2017
CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6
CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8
VMScore: 828
Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Vulnerability Summary

Adobe Acrobat Reader versions 11.0.19 and previous versions, 15.006.30280 and previous versions, 15.023.20070 and previous versions have an exploitable integer overflow vulnerability in the XML Forms Architecture (XFA) engine, related to layout functionality. Successful exploitation could lead to arbitrary code execution.

Affected Products

Vendor Product Versions
AdobeAcrobat11.0.19
AdobeAcrobat Dc15.006.30280, 15.023.20070
AdobeAcrobat Reader Dc15.006.30280, 15.023.20070
AdobeReader11.0.19